RE: Apps over SSL

2000-09-20 Thread Jeffrey Altman 

Have you looked at stunnel?

 An excellent question. My whole goal is to be able to create a module which  will 
not only create an SSL session and pipe any other app over it, but also let  me 
entitle the user according to the credentials obtained from the client certificate.
 
 s0ulfire
 
 



  Jeffrey Altman * Sr.Software Designer
 The Kermit Project * Columbia University
   612 West 115th St * New York, NY * 10025 * USA
 http://www.kermit-project.org/ * [EMAIL PROTECTED]


__
OpenSSL Project http://www.openssl.org
User Support Mailing List[EMAIL PROTECTED]
Automated List Manager   [EMAIL PROTECTED]

RE: Apps over SSL

2000-09-18 Thread Mark H. Wood 

On Fri, 15 Sep 2000, Soul Fire wrote:
 Thanks for the direction. I know that openssh would replace the need for
 telnet right off the bat but does it allow for other apps to ride over
 the encrypted stream as well?

OpenSSH automagically sets up a tunnel for the X Window protocol, and I've
also used it to tunnel VNC sessions.  It's not too hard to set up.  See
the documentation for details.

Here's a shellscript that I wrote to encapsulate the gory details of VNC
tunnelling:

#! /bin/sh

GATEWAY=${VNC_GATEWAY-rahal}

ssh -L 5900:$1:5902 -x -f $GATEWAY 'sleep 10'
vncviewer -encodings "copyrect hextile" localhost

$GATEWAY is the name of the machine at the other end of the tunnel.  VNC
uses ports 5900-up.  The 'sleep 10' command is probably needed only
because I don't know more about controlling ssh properly.

Further discussion of ssh ought to move to [EMAIL PROTECTED] or
comp.security.ssh .

-- 
Mark H. Wood, Lead System Programmer   [EMAIL PROTECTED]
2000-05-05 13:27:15 GMT -- still no icebergs in the White River

__
OpenSSL Project http://www.openssl.org
User Support Mailing List[EMAIL PROTECTED]
Automated List Manager   [EMAIL PROTECTED]